kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
372327 commits 42 branches 80 tags 2.7 GiB
Commit graph

21545 commits

Author SHA1 Message Date
Mark Felder
9828f3208f Adjust range for apache22 
We intended to commit 2.2.31 to ports but there are some issues. We will
instead backport the CVE fix to 2.2.29_6 for now.

Security:	CVE-2015-3183
 2015-07-20 16:35:13 +00:00
Mark Felder
a18c28d59d Document PCRE buffer overflow 
PR:		201188
Security:	CVE-2015-5073
 2015-07-20 15:00:23 +00:00
Mark Felder
66eff4eebe Fix moodle reference URL 
PR:		201675
Security:	43891162-2d5e-11e5-a4a5-002590263bf5
 2015-07-20 14:52:06 +00:00
Mark Felder
acd94bf6a8 Document Cacti Multiple XSS and SQL injection vulnerabilities 
PR:		201702
Security:	CVE-2015-4634
Security:	0bfda05f-2e6f-11e5-a4a5-002590263bf5
 2015-07-20 14:35:39 +00:00
Renato Botelho
bfb16b32ec - Fix installation with DOCS broken by my last commit 
- Bump PORTREVISION

Pointyhat to:	garga
 2015-07-20 13:13:01 +00:00
Mathieu Arnold
848dfdbbaa Fix build WITHOUT=NLS. 
Sponsored by:	Absolight
 2015-07-20 13:01:33 +00:00
Renato Botelho
48fdd79071 - Replace DISTVERSION by PORTVERSION otherwise it ends up as 1.8.14.p1, 
what is < 1.8.14. [1]
- While I'm here silence portlint warnings re-generating patches with
  make makepatch and removing unnecessary DOCS check

Reported by:	Robert Burmeister [1]
 2015-07-20 12:30:54 +00:00
Renato Botelho
6499621583 Update to 1.8.14p1 2015-07-19 13:02:38 +00:00
Mark Felder
82117237b4 Document php-phar vulnerabilities 
Add missing modified date to zenphoto entry

Security:	CVE-2015-5589
Security:	CVE-2015-5590
 2015-07-18 23:43:41 +00:00
Mark Felder
55c06219e4 zenphoto was assigned CVEs 
Security:	5c399624-2bef-11e5-86ff-14dae9d210b8
 2015-07-18 23:26:23 +00:00
Mark Felder
eaeeb99d09 Document recent Moodle security advisories 
Security:	CVE-2015-3272
Security:	CVE-2015-3273
Security:	CVE-2015-3274
Security:	CVE-2015-3275
Security:	43891162-2d5e-11e5-a4a5-002590263bf5

PR:		201675
 2015-07-18 23:16:04 +00:00
Mark Felder
82652125ce package name is mariadb100, not mariadb10 
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
 2015-07-18 22:09:10 +00:00
Mark Felder
6ae8532dfb MySQL SSL Downgrade affects the client not the server 
Remove mention of MySQL & friends that are not getting patched:
We will update their packages with a pkg-message to notify users

Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
 2015-07-18 20:21:07 +00:00
Mark Felder
9fa7db8dbb Add missing <cvename> to apache entry 
Security:	29083f8e-2ca8-11e5-86ff-14dae9d210b8
 2015-07-17 20:41:30 +00:00
Mark Felder
914bb920a5 Add missing apache22 packages for other "workers" 
Security:	29083f8e-2ca8-11e5-86ff-14dae9d210b8
 2015-07-17 17:30:34 +00:00
Mark Felder
27468dc29d Apache 2.2.31 is now public, fixing CVE-2015-3183 
Security:	CVE-2015-3183
 2015-07-17 17:26:53 +00:00
Mark Felder
84069dba92 CVE now assigned to squid 
Security:	150d1538-23fa-11e5-a4a5-002590263bf5
Security:	CVE-2015-5400
 2015-07-17 16:49:43 +00:00
Max Brazhnikov
7d1d2b9b42 security/pinentry: 
- Add GNOME 3 pinentry dialog
 2015-07-17 15:49:09 +00:00
Renato Botelho
c0ee37f355 Update to 1.8.14 2015-07-17 13:15:17 +00:00
Koop Mast
c226ecb73e Update flash entry. 
Fixed version was released for CVE-2015-5122, CVE-2015-5123.
 2015-07-17 07:52:17 +00:00
Mark Felder
301953df6f Correct range for libav 
I was led to believe that 11.5 and 12.0 releases existed and included
the fix. They have not yet been issued by upstream. We will backport the
fix and bump PORTREVISION.

Security:	a928960a-2bdc-11e5-86ff-14dae9d210b8
 2015-07-16 19:40:31 +00:00
Mark Felder
7e42716ea4 Document zenphoto vulnerabilities 
No CVE assigned yet
 2015-07-16 19:22:19 +00:00
Mark Felder
37f5cfceef Document groovy vulnerability 
Security:	CVE-2015-3253
 2015-07-16 19:01:11 +00:00
Mark Felder
a4928ec178 Document libav vulnerability 
Security:	CVE-2015-5479
 2015-07-16 17:13:27 +00:00
Tijl Coosemans
9dda8dd58f Add a new port for mbed TLS 2.0.0 (formerly polarssl) 2015-07-16 08:42:37 +00:00
Jan Beich
2142c8ff74 Document recent multiple mozilla vulnerabilities 2015-07-16 06:08:45 +00:00
Jan Beich
ef0a0c91f1 - Update NSS and ca_root_nss to 3.19.2 
- Update Firefox and gmp-api to 39.0
- Update Firefox ESR and libxul to 38.1.0

Changes:	https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.19.2_release_notes
Changes:	https://www.mozilla.org/firefox/39.0/releasenotes/
Changes:	https://www.mozilla.org/firefox/38.1.0/releasenotes/
MFH:		2015Q3
Security:	https://vuxml.freebsd.org/freebsd/44d9daee-940c-4179-86bb-6e3ffd617869.html
 2015-07-16 06:05:59 +00:00
Dmitry Marakasov
98e0658f70 - Drop @dirrm* from plist 
Approved by:	portmgr blanket
 2015-07-16 03:12:01 +00:00
Dmitry Marakasov
ea0276fde1 - Drop @dirrm* from plist 
Approved by:	portmgr blanket
 2015-07-16 02:44:58 +00:00
Dmitry Marakasov
6f5b1af7b4 - Drop @dirrm* from plist 
Approved by:	portmgr blanket
 2015-07-16 02:39:25 +00:00
Matthias Andree
b3fb0fb085 Add PolarSSL < 1.2.14 issues. 
See PR #201603 for a remedy.
 2015-07-15 23:24:37 +00:00
Tijl Coosemans
3b24aa8886 Latest libxml2 vulnerability also affects linux-*-libxml2 2015-07-15 21:10:52 +00:00
Tijl Coosemans
0b8062d39e Document linux-*-libxml2 vulnerabilities 2015-07-15 20:10:38 +00:00
Tijl Coosemans
eb7966011b Document linux-c6-flac vulnerabilities 2015-07-15 19:40:04 +00:00
Dmitry Marakasov
130db4abf8 - Add LICENSE_FILE 
- Fix shebangs
- Add NO_ARCH

Approved by:	portmgr blanket
MFH:		2015Q3 (blanket)
 2015-07-15 18:37:06 +00:00
Bartek Rutkowski
768e5d4a76 security/tclgpg: new port 
Tcl interface to GNU Privacy Guard with interface similar to TclGPGME

WWW: https://chiselapp.com/user/sgolovan/repository/tclgpg/

PR:		201337
Submitted by:	Mikhail <mp39590@gmail.com>
 2015-07-15 17:43:37 +00:00
Dmitry Marakasov
9b17636b06 - Note that the previous commit has added missing USES=perl5 
- This commit fixes it as it should only be a run-dependency

Approved by:	portmgr blanket
 2015-07-15 17:39:46 +00:00
Tijl Coosemans
066f65ca47 Update to nss-3.19.1-3.el6_6 2015-07-15 16:26:34 +00:00
Tijl Coosemans
3ec3901646 Update to libssh2-1.4.2-1.el6_6.1 2015-07-15 16:03:18 +00:00
Tijl Coosemans
44ca809b55 Update to cyrus-sasl-lib-2.1.23-15.el6_6.2 2015-07-15 15:57:31 +00:00
Mark Felder
efe33c1ada - Document multiple security issues for libwmf 
PR:		201513
Security:	CVE-2004-0941
Security:	CVE-2007-0455
Security:	CVE-2007-2756
Security:	CVE-2007-3472
Security:	CVE-2007-3473
Security:	CVE-2007-3477
Security:	CVE-2009-3546
Security:	CVE-2015-4695
Security:	CVE-2015-4696
Security:	CVE-2015-0848
Security:	CVE-2015-4588
Security:	ca139c7f-2a8c-11e5-a4a5-002590263bf5
 2015-07-15 15:49:59 +00:00
Mark Felder
dd15fe6134 Reference another URL for tidy's CVE 
PR:		200631
Security:	bd1ab7a5-0e01-11e5-9976-a0f3c100ae18
 2015-07-15 15:19:53 +00:00
Mark Felder
e6f6190e96 CVEs have been assigned for tidy 
Security:	bd1ab7a5-0e01-11e5-9976-a0f3c100ae18
Security:	CVE-2015-5522
Security:	CVE-2015-5523
 2015-07-15 14:03:16 +00:00
Mark Felder
60cd13f0e9 Document multiple apache24 vulnerabilities 
Security:	CVE-2015-3183
Security:	CVE-2015-3185
Security:	CVE-2015-0253
Security:	CVE-2015-0228
 2015-07-15 13:40:32 +00:00
Koop Mast
0d1093ae75 Fix typo in flash security bulletin. 2015-07-15 13:19:57 +00:00
Tijl Coosemans
66873d0f39 - Update url of latest Flash plugin advisory 
- Document libXfont vulnerabilities in linux-*-xorg-libs
 2015-07-15 12:46:08 +00:00
Matthias Andree
cf38806ec3 Add an openvpn-polarssl that selects PolarSSL for its default TLS provider. 2015-07-15 00:10:59 +00:00
Baptiste Daroussin
bdf7699e8b Development ceased, broken with modern ssh (lots of options just do not work) 2015-07-14 20:39:36 +00:00
Dmitry Marakasov
917579f01d - Fix shebangs 
Approved by:	portmgr blanket
MFH:		2015Q3 (blanket)
 2015-07-14 20:32:39 +00:00
Dmitry Marakasov
bc3f38623b - Fix shebangs 
Approved by:	portmgr blanket
MFH:		2015Q3 (blanket)
 2015-07-14 20:31:45 +00:00